Merge pull request #38 from element-hq/guillaumev/bookstack-perms

Bookstack small fixes & typos

charts/bookstack/Chart.yaml

@@ -7,7 +7,7 @@ maintainers:
 
 # This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
-version: "0.1.0"
+version: "0.1.1"
 
 # Track the appVersion based on the image:
 # renovate: image=ghcr.io/linuxserver/bookstack

charts/bookstack/templates/deployment.yaml

@@ -82,7 +82,7 @@ spec:
             - name: SAML2_GROUP_ATTRIBUTE
               value: {{ .groupAttribute | quote }}
             - name: SAML2_IDP_AUTHNCONTEXT
-              value: {{ .idpAuthnContent | quote }}
+              value: {{ .idpAuthnContext | quote }}
             - name: SAML2_IDP_ENTITYID
               value: {{ .idpEntityId | quote }}
             - name: SAML2_NAME

charts/bookstack/values.yaml

@@ -29,17 +29,17 @@ serviceAccount:
 podAnnotations: {}
 
 ## Pod security options
-podSecurityContext:
-  fsGroup: 1000
-
-## Default security options to run bookstack as read only container without privilege escalation
-securityContext:
-  allowPrivilegeEscalation: false
-  privileged: false
-  readOnlyRootFilesystem: true
-  runAsNonRoot: true
-  runAsGroup: 1000
-  runAsUser: 1000
+podSecurityContext: {}
+  # fsGroup: 1000
+
+## Default security options
+securityContext: {}
+  # allowPrivilegeEscalation: false
+  # privileged: false
+  # readOnlyRootFilesystem: true
+  # runAsNonRoot: true
+  # runAsGroup: 1000
+  # runAsUser: 1000
 
 ## Default bookstack service port (default web service port)
 service:
@@ -160,7 +160,7 @@ settings:
     emailAttribute: "email"
     externalIdAttribute: "email"
     groupAttribute: "Role"
-    idpAuthnContent: true
+    idpAuthnContext: true
     idpEntityId: https://sso.example.com/auth/realms/company/protocol/saml/descriptor
     name: "My SSO"
     removeFromGroups: true